Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/80d9df-eaf3-48b6-8fd5-0acc892b11d2/1/cQD5iWkeBhm6kPlmDoga-weGTeU.roa
File: cQD5iWkeBhm6kPlmDoga-weGTeU.roa (raw, json)
Hash identifier: UvWaAutVINMiBs+Gy79xmcQ6uUBx72BF1gaR0its+K0=
Subject key identifier: 71:00:F9:89:69:1E:06:19:BA:90:F9:66:0E:88:1A:FB:07:86:4D:E5
Certificate issuer: /CN=4f36103344fcd3b5759f2db3f3c7071376f9e233
Certificate serial: 05D7C806
Authority key identifier: 4F:36:10:33:44:FC:D3:B5:75:9F:2D:B3:F3:C7:07:13:76:F9:E2:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzYQM0T807V1ny2z88cHE3b54jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/80d9df-eaf3-48b6-8fd5-0acc892b11d2/1/cQD5iWkeBhm6kPlmDoga-weGTeU.roa
Signing time: Sat 01 Jan 2022 15:58:46 +0000
ROA not before: Sat 01 Jan 2022 15:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12301
IP address blocks: 193.194.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98027526 (0x5d7c806)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f36103344fcd3b5759f2db3f3c7071376f9e233
Validity
Not Before: Jan 1 15:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7100f989691e0619ba90f9660e881afb07864de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:70:6d:23:c6:c1:4f:6e:12:03:63:6e:ef:89:
44:87:67:24:67:43:f8:01:07:19:43:43:b7:f7:d1:
6d:96:d7:dd:83:74:10:df:f7:d4:71:55:31:86:37:
35:ec:0a:89:61:37:a4:2e:69:e9:bb:da:37:b9:d9:
27:bd:a6:ce:f3:ed:29:f7:6b:d2:2b:5b:53:5d:ab:
48:2f:c7:1b:0f:b6:9a:0d:9c:8b:ec:6e:33:56:a7:
0c:6f:31:61:4f:80:9f:9d:5c:7b:b8:b6:86:39:2e:
24:67:07:a7:73:75:10:89:ab:9f:2f:e7:80:9c:bf:
c3:e5:7c:dc:d3:34:c6:b1:43:03:22:1b:d8:75:6b:
db:9d:dd:2c:f8:36:33:f8:0a:06:c7:a0:9b:c0:d3:
34:06:1f:60:ca:14:6b:b7:ee:96:df:06:b3:6d:4a:
18:6d:6d:b8:17:7c:b6:fa:a0:35:f0:5f:af:03:64:
6e:bf:a8:91:7f:f3:26:21:3e:4a:85:c4:7a:bd:de:
be:1a:75:48:8e:ca:e2:f5:05:a3:58:d8:1a:20:a2:
66:57:2c:e1:94:1e:ea:7f:37:0c:f7:9e:24:05:7a:
f6:27:41:62:58:77:e3:45:b8:77:6c:09:14:23:c3:
2e:cf:2e:c2:61:65:aa:42:40:2c:4e:24:ec:8a:fb:
3e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:00:F9:89:69:1E:06:19:BA:90:F9:66:0E:88:1A:FB:07:86:4D:E5
X509v3 Authority Key Identifier:
keyid:4F:36:10:33:44:FC:D3:B5:75:9F:2D:B3:F3:C7:07:13:76:F9:E2:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzYQM0T807V1ny2z88cHE3b54jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/80d9df-eaf3-48b6-8fd5-0acc892b11d2/1/cQD5iWkeBhm6kPlmDoga-weGTeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/80d9df-eaf3-48b6-8fd5-0acc892b11d2/1/TzYQM0T807V1ny2z88cHE3b54jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.194.159.0/24
Signature Algorithm: sha256WithRSAEncryption
af:94:e9:b4:f7:bb:cf:5e:68:6e:d6:e5:80:cc:f3:60:99:aa:
7a:98:6f:08:b8:1b:f6:20:67:95:39:2e:2e:fa:63:92:94:9e:
a2:db:09:69:c4:0a:d2:59:d2:e7:13:e8:e3:36:2e:2d:73:ed:
5b:bf:91:a6:b2:92:d9:05:64:dd:cf:77:98:0a:21:6d:26:66:
06:02:2b:83:10:38:79:a3:9b:a4:cc:cc:6f:cb:a2:1a:a1:c7:
29:31:23:c4:0e:16:72:60:14:43:f2:86:84:51:e5:48:ed:d4:
13:e5:8b:8c:23:f1:dd:cc:4d:39:4e:1f:d2:46:37:95:13:01:
df:75:b1:44:64:75:6b:cf:8d:3f:b9:b6:6a:90:3d:67:f2:92:
18:41:9d:c3:49:c4:c0:29:7b:ca:30:b5:6b:7b:06:00:89:eb:
72:61:cc:e1:c6:52:0f:8e:a0:f3:8a:e6:47:26:58:a6:04:59:
8b:98:1e:71:34:cf:df:4f:1d:2d:4e:55:ab:0f:58:05:c3:d7:
03:ff:0e:67:f1:90:da:69:ed:0b:f6:3c:de:ed:d1:31:6c:f9:
0f:41:6c:53:b7:85:b6:e3:0e:44:e7:a4:00:96:fb:da:ad:2a:
a3:ba:a0:31:e8:71:d1:7c:6e:25:40:d8:7b:0d:4a:c9:63:23:
8b:23:ef:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:36 2025 by rpki-client